# Report 2021-12

## News

 - [https://www.statewatch.org/news/2021/november/eu-data-retention-strikes-back-options-for-mass-telecoms-surveillance-under-discussion-again/](EU: Data retention strikes back? Options for mass telecoms surveillance under discussion again)
 - [Prisons transcribe private phone calls with inmates using speech-to-text AI](https://www.theregister.com/2021/12/04/in_brief_ai/)
 - [The Verizon app might be collecting your browsing history and more](https://www.theverge.com/2021/12/5/22818783/verizon-app-data-collection-browsing-history)
 - [Eurostar tests facial recognition system on London train station](https://www.bleepingcomputer.com/news/technology/eurostar-tests-facial-recognition-system-on-london-train-station/)
 - [Qualcomm’s new always-on smartphone camera is a potential privacy nightmare](https://www.theverge.com/22811740/qualcomm-snapdragon-8-gen-1-always-on-camera-privacy-security-concerns)
 - [The Popular Family Safety App Life360 Is Selling Precise Location Data on Its Tens of Millions of Users](https://themarkup.org/privacy/2021/12/06/the-popular-family-safety-app-life360-is-selling-precise-location-data-on-its-tens-of-millions-of-user)
 - [Report: iOS Users Who Opt-Out of App Tracking Continue to Be Tracked by Facebook and Snapchat](https://www.macrumors.com/2021/12/08/users-continue-to-be-tracked-by-facebook/)
 - [Intel updates mysterious ‘software-defined silicon’ code in the Linux kernel](https://www.theregister.com/2021/12/08/intel_software_defined_silicon_update/)
 - [S.Korea to test AI-powered facial recognition to track COVID-19 cases](https://www.reuters.com/world/asia-pacific/skorea-test-ai-powered-facial-recognition-track-covid-19-cases-2021-12-13/)
 - [Leaked documents link Huawei to China’s domestic spying in Xinjiang](https://www.theverge.com/2021/12/14/22834860/huawei-leaked-documents-xinjiang-region-uyghur-facial-recognition-prisons-surveillance)
 - [Tirana Prosecution to Investigate Alleged Data Leak of More than 630,000 Albanians](https://exit.al/en/2021/12/22/tirana-prosecution-to-investigate-alleged-data-leak-of-more-than-630000-albanian-citizens/)
 - [Public Agencies Are Buying Up AI-Driven Hiring Tools and “Bossware”](https://themarkup.org/news/2021/12/23/public-agencies-are-buying-up-ai-driven-hiring-tools-and-bossware)
 - [Canada's public health agency admits it tracked 33 million mobile devices during lockdown](https://nationalpost.com/news/canada/canadas-public-health-agency-admits-it-tracked-33-million-mobile-devices-during-lockdown)
 - [T-Mobile says new data breach caused by SIM swap attacks](https://www.bleepingcomputer.com/news/security/t-mobile-says-new-data-breach-caused-by-sim-swap-attacks)
 - [Big Data May Not Know Your Name. But It Knows Everything Else](https://www.wired.com/story/big-data-may-not-know-your-name-but-it-knows-everything-else)

## Data Breaches

 - [Planned Parenthood LA discloses data breach after ransomware attack](https://www.bleepingcomputer.com/news/security/planned-parenthood-la-discloses-data-breach-after-ransomware-attack/)
 - [LINE Pay leaks around 133,000 users' data to GitHub, of all places](https://www.theregister.com/2021/12/07/line_pay_leaks_around_133000/)
 - [Cox discloses data breach after hacker impersonates support agent](https://www.bleepingcomputer.com/news/security/cox-discloses-data-breach-after-hacker-impersonates-support-agent/)
 - [Data breach impacts 80,000 South Australian govt employees](https://www.bleepingcomputer.com/news/security/data-breach-impacts-80-000-south-australian-govt-employees/)
 - [Credit card info of 1.8 million people stolen from sports gear sites](https://www.bleepingcomputer.com/news/security/credit-card-info-of-18-million-people-stolen-from-sports-gear-sites/)
 - [Ubisoft confirms Just Dance data breach amid developer exodus](https://www.zdnet.com/article/ubisoft-confirms-just-dance-data-breach-amid-developer-exodus/)
 - [Pro Wrestling Tees discloses data breach after credit cards stolen](https://www.bleepingcomputer.com/news/security/pro-wrestling-tees-discloses-data-breach-after-credit-cards-stolen/)
 - [SEGA Europe Thoroughly Scrutinizes its Cloud Security](https://vpnoverview.com/news/sega-europe-security-report/)
 - [Top 10 healthcare breaches in the U.S. exposed data of 19 million](https://www.bleepingcomputer.com/news/security/top-10-healthcare-breaches-in-the-us-exposed-data-of-19-million)

## Paper/Report

 - [Pool-Party: Exploiting Browser Resource Pools as Side-Channels for Web Tracking](https://arxiv.org/abs/2112.06324)
 - [Data Brokers and Sensitive Data on U.S. Individuals](https://sites.sanford.duke.edu/techpolicy/report-data-brokers-and-sensitive-data-on-u-s-individuals)
 - [Before and after GDPR: tracking in mobile apps](https://arxiv.org/abs/2112.11117)
 - [FP-Radar: Longitudinal Measurement and Early Detection of Browser Fingerprinting](https://arxiv.org/abs/2112.01662)
